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AMENDMENTS TO THE CLAIMS 

1-36. (Canceled) 

37. (Currently Amended) A method for authorizing a portable communication 
device to access a destination network, wherein the portable communication device has access to 
a home network through home network settings that are incompatible with the destination 
network, and wherein the portable communication device can access the destination network 
without altering the home network settings, comprising: 

receiving at a gateway device a network service request from a portable 
communication device, the network service request including an indication of a network 
address to be accessed, the network address residing on a destination network; 

determining if the portable communication device is entitled to access the network 
address based upon information contained in the network service request received by the 
gateway device, wherein the portable communication device remains configured for 
accessing a home network through home network settings that are incompatible with the 
destination network, and wherein no additional configuration software need be installed 
on the portable communication device to access the destination network and any other 
network; 

if it is determined that the portable communication device is not entitled to access 
the network address: 

storing the network address request; 

modifying, at the gateway device, the network address request and 
communicating the modified request to a redirection server; 

responding, at the redirection server, to the modified request with a 
browser redirect message that reassigns the modified request to a predetermined, 
redirected network address; 

receiving, at the gateway device, the browser redirect message and 
modifying it with the stored original network address; and 

sending the modified browser redirect message to the computer, which 
automatically redirects the modified browser redirect message being configured to 
redirect the computer to the redirected network address. 
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38. (Previously Presented) The method of claim 37, wherein the redirection server is 
internal to the gateway device. 

39. (Previously Presented) The method of claim 37, wherein the redirection server is 
external to the gateway device. 
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40. (Currently Amended) A system for authorizing a portable communication device 
to access a destination network, wherein the portable communication device has access to a home 
network through home network settings that are incompatible with the destination network, and 
wherein the portable communication device can access the destination network without altering 
the home network settings, comprising: 

a gateway device configured to receive a service access request from a portable 
communication device, the service access request indicating a desired network address 
residing on a destination network, the gateway device further configured to: 

determine if the portable communication device is entitled to access the 
network address based upon information contained in the original service access 
request, wherein the portable communication device remains configured for 
accessing a home network through home network settings that are incompatible 
with the destination network, and wherein no additional configuration software 
need be installed on the portable communication device to access the destination 
network and any other network; 

store the network address request if it is determined that the portable 
communication device is not entitled to access the destination network; and 

modify the original network address request if it is determined that the 
portable communication device is not entitled to access the destination network; 
and 

a redirection server in communication with the gateway device configured to 
receive the modified service access request from the gateway device; and respond with a 
browser redirect message that reassigns the original service access request to a redirected 
address ; wherein 

the gateway device receives being configured to receive the browser redirect 
message and modifies modify the browser redirect message with the stored original 
service access request before forwarding the browser redirect message to the portable 
communication device, aad— wherein the browser redirect message is configured to 
redirect the portable communication device receives the modified browser redirect 
message and the portable communication device is redirected to the redirected address. 

-4- 



Application No.: 09/458,602 
Filing Date: December 8, 1999 

41 . (Previously Presented) The system of claim 40, further comprising a user profile 
database in communication with the gateway device that includes stored user-access information. 

42. (Previously Presented) The system of claim 40, further comprising an 
Authentication, Authorization and Accounting (AAA) server in communication with the gateway 
device and user profile database, the AAA server determines if the portable communication 
device is entitled to access the original destination address requests based upon the user-access 
information stored within the user profile database. 

43. (Previously Presented) The system of claim 40, wherein the redirection server is 
located within the gateway device. 

44. (Previously Presented) The method of Claim 37, wherein the indication of the 
network address comprises a hypertext transfer protocol (HTTP) request for a web page. 

45. (Previously Presented) The method of Claim 37, wherein the indication of the 
network address comprises a destination address. 

46. (Previously Presented) The method of Claim 45, wherein the destination address 
comprises one or more of a destination port, Internet address TCP port and a network. 

47. (Previously Presented) The system of Claim 40, wherein the indicated desired 
network address comprises a hypertext transfer protocol (HTTP) request for a web page. 

48. (Previously Presented) The system of Claim 40, wherein the indication of a 
network address comprises a destination address. 

49. (Previously Presented) The system of Claim 48, wherein the destination address 
comprises one or more of a destination port, Internet address TCP port and a network. 

50. (New) The method of Claim 37, wherein the information contained in the network 
service request comprises a MAC address, and wherein determining if the portable 
communication device is entitled to access the network address comprises comparing the MAC 
address to a database of authorized MAC addresses. 

5 1 . (New) The method of Claim 37, wherein the information contained in the network 
service request is indicative of a location of the portable communication device, and wherein 
determining if the portable communication device is entitled to access the network address is 
based upon the indicated location of the portable communication device. 
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52. (New) The method of Claim 37, further comprising: 

receiving, at the gateway device, a second request from the portable 
communication device, the second request indicating a desired second network address; 
and 

determining that the portable communication device is entitled to access the 
network address based at least upon comparing a MAC address included in the second 
request with an authorization database. 

53. (New) The system of Claim 40, wherein the information contained in the original 
service access request comprises a MAC address, and wherein the gateway device is configured 
to determine if the portable communication device is entitled to access the network address, at 
least in part by comparing the MAC address to a database of authorized MAC addresses. 

54. (New) The system of Claim 40, wherein the information contained in the original 
service access request is indicative of a location of the portable communication device, and 
wherein the gateway device is configured to determine if the portable communication device is 
entitled to access the network address, based at least in part on the indicated location of the 
portable communication device. 

55. (New) The system of Claim 40, wherein the gateway device is further configured 

to: 

receive, at the gateway device, a second request from the portable communication 
device, the second request indicating a desired second network address; and 

determine that the portable communication device is entitled to access the second 
network address based at least upon comparing a MAC address included in the second 
request with an authorization database. 
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56. (New) A method of authorizing a portable communication device to access a 
network resource, the method being performed at a network management system in 
communication with the portable communication device via a network, the method comprising: 

receiving, from a portable communication device via a network, a request to 
access a network resource, the request being configured with network settings that do not 
correspond to the network; 

determining, on a processor, whether the portable communication device is 
authorized to access the requested network resource, the determination being based at 
least in part on comparing an attribute included in the request to a user profile database; 
and 

redirecting, upon determining that the portable communication device is not 
authorized to access the requested network resource, the portable network device to an 
authentication system, by performing a method comprising: 

storing the request to access the network resource; 

communicating a modified request to a redirection server, the modified 
request being based upon the request to access the network resource; 

receiving, from the redirection server, a browser redirect message 
comprising a resource locator that identifies the authentication system, the 
browser redirect message configured to cause the portable communication device 
to be redirected to the authentication system; and 

sending, to the portable communication device, a modified browser 
redirect message based upon the browser redirect message, the modified browser 
redirect message configured to be responsive to the request to access the network 
resource; 

whereby the portable communication device is enabled, by being redirected to the 
authentication system, to submit authentication-related information so that the portable 
communication system may be authorized to access the requested network resource. 

57. (New) The method of Claim 56, further comprising updating the user profile 
database upon determining that the portable communication device is entitled to access the 
requested network resource. 
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58. (New) The method of Claim 56, further comprising maintaining in the user profile 
database a historical log of the portable communication device's access to the destination 
network. 

59. (New) The method of Claim 56, wherein the request is an HTTP request. 

60. (New) The method of Claim 56, wherein determining whether to authorize the 
portable communication device to access the requested network resource further comprises 
denying the portable communication device access where the user profile database indicates that 
the portable communication device may not access the destination network. 

61. (New) The method of Claim 56, wherein the attribute included in the request is 
one of a port, circuit ID, VLAN ID or MAC address. 

62. (New) The method of Claim 56, further comprising: 

receiving, from the portable communication device, a second request to access a 
second network resource; and 

determining that the portable communication device is authorized to access the 
second network resource, based at least upon a MAC address included in the second 
request. 
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63. (New) A network management system configured to manage authorization of a 
portable communication device to access a network resource, the system comprising: 

a network communications interface configured to receive, from a portable 
communication device via a network, a request to access a network resource, the request 
comprising a resource locator that identifies the network resource, the request being 
configured with network settings that do not correspond to the network; and 

a processor configured to determine whether the portable communication device 
is authorized to access the requested network resource, the determination being based at 
least in part on comparing an attribute included in the request to a user profile database; 

the processor further configured to redirect, upon determining that the portable 
communication device is not authorized to access the requested network resource, the 
portable network device to an authentication system, by performing a method comprising: 
storing the request to access the network resource; 

communicating a modified request to a redirection server, the modified 
request being based upon the request to access the network resource; 

receiving, from the redirection server, a browser redirect message 
comprising a second resource locator that identifies the authentication system, the 
browser redirect message configured to cause the portable communication device 
to be redirected to the authentication system; and 

sending, to the portable communication device, a modified browser 
redirect message based upon the browser redirect message, the modified browser 
redirect message configured to be responsive to the request to access the network 
resource; 

whereby the portable communication device is enabled, by being redirected to the 
authentication system, to submit authentication-related information so that the portable 
communication system may be authorized to access the requested network resource. 

64. (New) The system of Claim 63, wherein the processor is further configured to 
maintain, in the user profile database, a historical log of the portable communication device's 
access to the destination network. 

65. (New) The system of Claim 63, wherein the request is an HTTP request. 
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66. (New) The system of Claim 63, wherein determining whether to authorize the 
portable communication device to access the requested network resource further comprises 
denying the portable communication device access where the user profile database indicates that 
the portable communication device may not access the destination network. 

67. (New) The system of Claim 63, wherein the attribute included in the request is 
one of a port, circuit ID, VLAN ID or MAC address. 

68. (New) The system of Claim 63, wherein the network interface is further 
configured to receive, from the portable communication device, a second request to access a 
second network resource, and wherein the processor is further configured to determine that the 
portable communication device is authorized to access the second network resource, based at 
least upon a MAC address included in the second request. 



